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U8BR ACCBSa TO A KS^Sf^J CTffTfffgfi mm DRFIMITiqgS 

The present invention relates to user access to a registry « such as 
a ODOI registry, of business services and more specifically to the user 
obtaining details of a business service from the registry. 

Over recent years it has become commonplace for a business to 
provide 

the ability for a user to purchase goods from t^e business using a 
computer which communicates with a conoputer of the business. For example a 
business may provide a web site on the Internet which enables a user to 
purchase goods from the business over the world wide web. Following on 
from this success it has become a requirement to more easily locate 
suitable businesses to deal with and this requirement has been satisfied 
by the arrival of registry services # such as specified by UDDX (Universal 
Description, Discovery and Integration) , which provide support for 
business entities which provide services. 

A DDDZ registry enables a business entity to publish information 
about the services it provides and a user to discover information about 
published business services. Accordingly, for exanple, a user can send a 
request to the UDDX registry to obtain details of business services t^ich 
provide a particular service which the user requires. The user then 
chooses from one or more business services for which details are returned 
by the UDDI registry and the sends an appropriate request to the chosen 
business service. However the UDDI registry may return to a user details 
of a business service which it does not have appropriate permission to 
access and, as a result, the user will not discover that they cannot 
access a particular business service until their request to the particular 
business service is rejected. 

This is a waste of time and resource for the user in making a 
request to a business service which is bound to fail, and a waste of time 
and resource for the business «riiich provides the service which must handle 
requests from users which do not have the required permissions to access 
it. As a result it would be advantageous to provide a method of saving 
such waste time and resource. 



WO200SAHI3937 



PCT/GB2003/OOSa8 



2 



The present invention addresses this problem by providing means for 
a registry which hold business entity definitions, such as a UDDX 
registry* to restrict user access to infomation in the business 
definitions to that which the user has permission to access. 

According to a first aspect the present invention provides a nechod 
for a registry of business entity definitions to handle users recpiests to 
access business entity definitions, the method comprising steps of: 
receiving a request from a user to access a business entity definitions- 
obtaining, from data associated with the reqtuest, the identity of the 
user; determining, from permission details associated with the business 
entity definition and the identity of the iiser, whether the user has 
permission to access information in the business entity definition; and 
denying the user access to information ib the business entity definition 
if it is determined that the user does not have permission. 

According to a second aspect the present invention provides a 
registry of business entity definitions for handling reqtuests to access 
business entity definitions, the registry comprising; means for receiving 
a request from a user to access a business entity definition; means for 
obtaining, from data associated with the request, the Identity of the 
user; means for determining, from permission details associated with the 
business entity definition and the identity of the user, whether the user 
has permission to access information in the business entity definition; 
and means for denying the user access to information in the business 
entity definition if it is determined that the user does not have 
permission. 

According to a fourth aspect the present invention provides a 
registry service for handling a user requests to access business entity 
definitions, providing the service comprising the steps of: receiving a 
request from a user to access a business entity definition; obtaining, 
from data associated with the request, the identity of the user; 
determining, from permission details associated with the business entity 
definition and the identity of the user, whether the user has permission 
to access infozmation in the business entity definition; and denying the 
user access to infozmation in the business entity definition if it is 
determined that the user does not have permission. 
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According to a third aspect the present invention provides and 
computer program product comprising instructions which, when run on a data 
processing host, cause said data processing host to carry out a method 
according to the first aspect. 

The user access request could be to read, update or delete all or a 
suhset of the information contained in a business entity definition. If 
the request is to read the business service definition it could be a 
request to read a specific business ^tity definition or a business entity 
definition which satisfies search criteria specified in the request. -For 
exaii\ple the search criteria could be used locate the business entity 
definition and determine what infoznation in the business entity 
definition the user wishes to access. 

Optionally the business entity definition may comprise a plurality 
of information elenaits and permission details are associated with each of 
these information elements. As a result the permission details can be used 
to only deny a user access to those information elements for which the 
permission details indicate they do not have the required permission. 
However note that this does not require all information elements in a 
business entity definition to have associated permission details. Further 
note that it is not necessary to determine if a user has permission to 
access all information elements which have associated permission details 
but only those information elements which the user has requested to 
access . 

If permission details are associated with a plurality of information 
elements in a business entity definition an access policy can be used 
t^ch is used to determine whether a user has permission to access an 
information element using both the permission details associated with the 
inforzoation element and the permission details of a different information 
elemoit. For example, if the information elements are in a hierarchy such 
that a first information element contains one or more second information 
elements access to the first information element can be denied if the user 
does not have access to all, or a subset, of the second information 
elements contained within it. 

Permission details could conprise, for example, idoitiflers for one 
or more clients or users, and/or identifiers for one or more client or 
user groups which have access to the business entity definition « or 
information elements of the business service definition, with which they 
are associated. Further the levels of access an identifier has can also be 
indicated, for example read, update and delete. Further permission details 
could be stored in a variety of formats, for exaiqple in an Access Control 
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Lisc (ACti) which is a file containing a lisc of users and access rights 
for each user. 

Preferably permission decails are obtained frara a file system in 
which their association with a business entity definition, or infonnation 
element in the business entity definition, is used to determine their 
10€»tion in the file system. For example, if a unique key is associated 
with a business entity definition and each information element contained 
within it, the ACL associated with an information element will be the in a 
directory defined by the key of a business entity definition and the key 
of the information element. As a result the permission details can be 
easily located and the business entity definition does not require 
updating to contain or refer to permission details. Alternatively 
pezmission details could be included In, or referenced frm, the business 
entity definition, or information element in the business entity 
definition, with which they are associated. 

Optionally the registry is a UDDI registry and the information in 
the business entity definiticm is a businessEntity information element, 
the businessEntity informatiion element containing one or more 
businessService information elements, each businessService containing one 
or more binding template information elemaits and each binding template 
containing one or more references each referring to a technical model 
information element. 

Optionally the user could be a web user who ccfflommicates with the 
ODDI registry over the internet to obtain details of web services which 
can be accessed over the internet. 

Brief PeecgApfcAon e* r^T VrTrATIff? 

The invention will now be described, by way of example only, with 
reference to a preferred embodiment thereof, as illustrated in the 
accompanying drawings, in which: 

Figure 1 is a block diagram of a data processing environment in 
which the preferred embodiment of the present invention can be 
advantageously applied,- 

Figure 2 is a schematic diagram of the main information elenents in 
a business entity definition according to the prior art XJDDX 
specification; 
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Figure 3 is a schenatic diagram which shows an exanple of a user 
attesqptiiig to access a business service tor which they do not have the 
required permission to access « according to the prior art ODDI 
specification; 

Figure 4 is a schematic diagram of a business entity definition and 
associated access controi lists, according to the preferred eznbodxment of 
the present invention; 

.Figure 5 is a schematic diagram which shows an exaxnple of a user 
attempting access a business service which they do not have permission to 
access, according to the preferred embodiment of the present invention; 
and 

Figure 6 is a flow chart of an overview of the method followed by a 
UDDI registry and Access Manager according to the preferred embodiment of 
present invention. 

P^scription of thm Pgegar«Mt ^>^*^^y 

In figure 1, a client/server data processing host 10 is connected to 
other client /server data processing host 12 and 13 via a network 11. which 
could be* for exanple, the Internet. In the preferred enibodiment a UDDX 
registry may be installed on any such client/ server and accept requests to 
define/update details of a web service, or obtain details of a web 
service, from a user using the same or another client/server- data 
processing host. Client /server 10 has a processor 101 for executing 
programs that control the operation of the client/server 10, a RAM 
volatile memory element 102, a non-volatile memory 103, and a network 
connector 104 for use in interfacing with the network 11 for communication 
with the other client/servers 12 and 13. 

The preferred ^nbodiment is discussed in terms of a business entity 
definition and a ODDI registry according to the UDDI specification. The 
UDDI specification defines a set of XML schemes which are tenplates for 
creating definitions of business entities. As a result a business entity 
definition may be an instance of one or more these defined XML scheoas. 

Figure 2 is a schematic diagram of the main coipponents of an exasqple 
business entity definition according to the prior art UZ>DI specification. 
The business entity definition provides details of services provided to 
the UDDI registry by a business. The business entity definition con^ises 
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a businessEntlty 201 which includes descriptive infozination 202 abouC che 
business and information aJsout one or more business services which t:he 
bxisiness entity offers. The descriptive information 202 includes a name 
and description o£ the business « one or more identifiers » €usd one or more 
categories. T^e identifiers are used to uniquely identify the business, 
and the one or more categories are used to identify, for example , the 
industry type, product type, and geographic location of the business. The 
information about services which the business offers is in one ot more 
businessService entities 203. 

Bach businessService entity 203 further provides descriptive and 
technical information about the service. The descriptive information 204 
includes a name and description of the service and one or more categories 
which apply to service. The technical information comprises one or more 
binding tenplates 205 each of which includes a binding description, one or 
more categories which apply to the binding, one or more references each 
referring to a technical model (tHodel) 207, and an accessPoinc which 
defines an endpoint address at %mich the service can be contacted. In UDDI 
a tModel can be used for a variety of purposes although the main purpose 
is to provide information which enables a user to make requests to the 
service defined by the businessService entity which contains it. 
Accordingly a tModel may include such information as the interfaces and 
communication protocol which a service supports, although such information 
may be provided using more than one tMbdel. Thus, if a service provides 
more than one binding template it will support more than one method of 
commmicating with it. 

Note that figure 2 only Illustrates a subset of the information 
which can be defined in an business entity definition, for exao^le the 
businessEntlty descriptive information 202 may include contact details. 
Further figure 2 does not describe the coo^lexities associated with some 
information parts, for example categories. However, such additional 
information is not relevant to the present invention. 

For example an business ^tity definition which describes a group of 
web services may comprise a businessEntlty which specifies: a name of 
•Abank'; a description of ^Abank is a web based bank providing financial 
services*; categories of * finance* and •OK*; an identifier which includes. 
*plc* and Abank's company registration number; and 3 businessService 
entities which describe services of accounts, shares, and pensions which 
the business entity provides. For example the businessService entity which 
describes the shares service might specify: a name of * shares'; a 
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description of ^Abank's share service'; categories of •shares' and -UK*; 
and two binding t«nplates «rhich define two different methods of accessing 
the share service, one for buying shares and the other for selling shares. 
For exanple the binding tenplate describing the buying shares service 
5 night specify: a description o£ *Abank's share purchase service* ? 

categories of ^purchase* and •l-ondon Stock Exchange*; an acceasPoint 
specifying a URI. at v^ich the share service can be located; and references 
to two titodels, one for users which wish to access the service using 
Siiaple Object Access Protocol over Hypertext Transfer Protocol (SOAP /HTTP) 

10 and the other using Internet Inter-Orb Protocol (HOP) - For example the 

Ufodel describing how to access the share buying service using SOAP/fCTPP 
will include: information specifying SOAP/HTTP and a specification of 
purchaseBDquiry, purchaseConfinn and purchaseDepline requests. Note that 
the values specified in this example for categories would bSe fr<xn a 

15 predefined and well known taxonomy with which the user would be familiar. 

Figure 3 is a schematic diagram which shows an example of a user 
atteii«>ting access a service which it does not have permission to access, 

20 according to the prior art OD0I specification. The user, using machine 

dientX 301, first sends a request (311) to the UDDI Registry 302 which 
specifies that they wish to obtain details of share buying services 
available in the UK. The TODI registry then searches its database 303 of 
business entity definitions 304 which have been registered with it. It 

25 finds several which include the one described above for Abank 305, and 

returns (312) details of them to Client X 301 for the user. The user 
prefers to use Abank and elects to conuminicate using SOAP/HTTP and as a 
result Cliencx 301 sends a purchaseEnquiry request (313), using SOAP/HTTP, 
specifying the userld of the user, for exasple •Alex' to Abank 305. 

30 However, Abank requires users to conqplete an off-line registration 

procedure before accessing its share service and 'Alex- has not previously 
con9>leted this procedure. As a result Abank 305 refuses (314) to bandle 
the purchaseEnquiry request received from •Alex* who then receives an 
error response to the request. The user must now select a different share 

35 service, of a different Isusiness entity, to use from those previously 

returned (312) by the ODDI registry 302. Note that the request (311) sent 
by the xiser to XJmi registry 302 could also to be to obtain details 
specifically for Abank. 

40 According to the present invention, in the example of figure 3, the 

user of ClientX 301 has used unnecessary time and resources selecting the 
Aback service 305 and sending a p\irchaseEnquiry request (313) to it. 
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Further the Abank service 305 has used unnecessary time and resources 
handling and rejecting the request from the unauthorised user. As a result 
it would be better if the user was not returned details of a web service, 
such as provided by Abank* which it is not authorised to access. 

According to the preferred embodiment of the present invention an 
external Access Manager is configured into a ODDI Registry so that an 
Access Control List (ACL) can be defined for one or more information 
elements ( e.g.: businessBntity, businessService Entity etc.) in a 
business entity definition held in the registry. The ACL is then used to 
control which users are permitted to 6ee/read« update and/or delete the 
entity. Note that for update and delete, the ACL overrides the standard 
ODDI behaviour which is that only the user that, created the entity can 
update it or delete it. Further note that the ACL can, for exainple, 
include identifiers which specify a particular user and/or identifiers 
which specify a group of users, and further include details for each user 
or group of users which operation the user is allowed to perform, such as 
read, update and/or delete. 

Figure 4 is a schematic diagram of an exanple business entity 
definition according to the preferred eonbodiment of the present invention. 
The diagram has comnwn parts with figure 2 and for which like numbers are 
used. However the diagram further includes Access Control Lists 401, 402, 
403 and 404. An ACL 401 is associated to the businessEntity 201 and 
contains a list of users who can access the BusinessEntity and descriptive 
information 202 contained within in it. The businessEntity includes 
several businessService entities 203 each of which is also associated with 
an ACL 402. A businessService entity requires an ACL 402 if only a subset 
of the users who can access the business entity definition can access the 
BusinessService entity and therefore an ACL 402 contains a stibset of users 
listed in ACL 401. Within each businessService entity are several binding 
tesqplates each of which are associated with an ACL 403. A binding tenplate 
requires an ACL 403 if only a subset of the users who can access the 
businessService entity can also access the binding template. Within each 
binding tenplate is a reference to one or more tModels each of which are 
also associated with an ACL 404. Note that tHodels are referenced from* 
and not included in« a binding tesplate and as a result the same tModel 
can be referenced from more than one binding template and from different 
business entity definitions. This means that ACL 404 does not necessarily 
contain a stibset of the users defined in ACL 403 but instead a more 
general list which can apply to all the business entity definition 
locations from which it is referenced. 
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For exasiple, a business entity definition iRThich describes an Xbank 
business entity which provides account « shares and prasions treb services 
defined in business service entities may have associated ACLs as now 
described. The bank perodts all users from the OK to access its services 
80 the ACL associated with the businessBntity specifies a group which 
defines TO users. However the share service is limited to registered users 
of which there are 4 : DealerTrusted^ Dealer, PricerTrusted and Pricer. as 
a result the ACL associated with the businessService entity which defines 
the share service lists only these four users. The businessService entity 
which .defines the share service includes two binding templates one for 
obtaining prices of shares and one for both obtaining prices and dealing 
in shares. DealerTrusted and Dealer are dealers and as a result the ACL 
associated with the binding tens>late for obtaining prices and dealing in 
shares lists only these two users. PricerTrusted and Pricer only make 
price enquiries and as a result the ACZ* associated with the binding 
template for obtaining share quotes contains only these two users. The 
binding tonplate for obtaining prices and dealing in shares contains 
references to four tMOdels: tMDealSecure* tMDeal, tMPriceSecure and 
tMPrice. tMDealSecxire and tHDeal describe how to access the dealing 
function, tMDealSecure using a secured connection and tMDeal using a 
non-secured connection. tMPricesSecure and tMPrice describe how to access 
the obtaining prices function, tMPriceSecure using a secured connection 
and tMPrice using a nan- secured connection. The binding template for 
obtaining prices contains references to two tMOdels which are 
tMPriceSecure and tMPrice. Associated with each tMOdel is an ACL. The ACL 
for tMDealSecure only lists Dealer who is a not a trusted dealer and so 
must use a secured connection. The ACL for tMDeal only lists DealerTrusted 
who is a secure dealer and trusted to access the service using a 
non-secured connection. The ACL for tMPriceSecure lists Dealer and Pricer 
because neither are trusted and so must use a secured connection. Finally 
the ACL for tMPrice lists DealerSecurc and PricerSecure because both are 
secure and trusted to access the service using a non-secxured connection. 

Note that in another eznbodiment one or more of the information 
elements (business£ntity« businessService* binding template, tModel) in 
the hierarchy may not have an associated ACL. Xn this case, it can be 
assumed that all users who can access an infoxmation element can also 
access any information element contained within it which does no have an 
associated ACL. For exanv^le if a binding template does not have an 
associated ACL it is assumed that all users who can access the 
businessService which contains it can also access the binding taqplate. 
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In Che preferred embodiment the ACLs are associated with the 
business entity definitions using a virtual file system. For example* in 
UDOI each information element can be associated with a unique key such 
that each businessEntity, business Service, binding template and tMOdel has 
a unique key. Ibese keys may therefore be used to access an ACh from a 
directory structiure which follows the same hierarchy as the business 
entity definition. As a result, for example, if the key for the Xbank 
business entity is *Xbank', the for a Zbank share businessService 
entity is *shoures', and the key for the share service binding tex^plates 
are "dealers' sad *pricers' the ACLs are placed in a directory structure 
as follows: 

/uddi/Xbank/<ACL for Sbank businessEntity> 
/uddi/Xbank/8hares/<ACL for share businessService> 
/uddi/Xbank/shares/dealers/<ACL for dealers binding template> 
/uddi/Xbank/shares/pricers/<ACL for pric'ers binding template> 

However, note that for illustrative purposes the keys used in this 
exaxople are somewhat simplistic and are unlikely to be unique with other 
business entities. Zn practice, in order to obtain uniqueness, a key is 
likely to be more cOTiplicated and comprise a UUID (universal Ohique 
Identifier] . 

In another eisbodiment the business entity definition could be 
updated to include an appropriate ACL or a reference to an appropriate 
ACL. 

Figure 5 is a schematic diagram which shows, according to the 
preferred embodiment of the present invention, an exan^le of a 
user attempting access a business service which they do not have the 
required permission to access. The diagram has common parts with Figure 3 
and for which like numbers are used. The user, using machine Clients 301 « 
first sends a request (511) to the UDDI Registry 302 which specifies that 
they wish to obtain details of share buying services available in the OK. 
The user request <511) further includes an identifier for the user, for 
exasiple •Fred', which is added to a context associated with the flow, for 
example by middleware running in Clientx 301. The UDDI registry then 
searches its database 303 of business entity definitions 304, which have 
been registered with it, for those which provide the service requested. It 
finds and retains a list of several suitable business entities one of 
which is Xbank 502. Configured with the VDDI registry is an Access Manager 
501 which the UDOZ registry then requests to check each ACL 504 which is 
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associated with any of the relevant inforniation elements in the business 
tttity definitions vhich it has located. The check uses the user 
identifier included in the context with the user request (511) • For 
exan^le^ with reference to the example above, the XbanJc business entity 
permits access to all users in the UK of which *Fred* is one. However the 
Xbank share service is not accessible to *Fred' because it only permits 
access to 4 users, namely: Deal erTrus ted. Dealer, PricerTrusted and 
Pricer. As a result the Access Kanager (501) indicates to the ODD! 
registry that an authentication has failed and as a result details of 
Xbank .are removed from the list of services returned by the registry. Once 
the ODDI registry has used the Access Manager to check all business 
entities in the list it retuims (512) to ClientX 301 only those which it 
has permission to access. 

Note that in the exan^le of figure 5 the user request is to obtain a 
list of bxxsiness entities which satisfy a search criteria. In another 
embodiment the request could be for details of a specific business entity 
or to update or delete the XML schema of the business entity. 

Further note that it is the responsibility of the business provider 
to provide to the UDDI registry suitable permission lists, such as ACt<s« 
for its business entity definition (s) . AS a result, because the UDDI 
registry and bfuslness are likely to be in different security domains and 
therefore do not have access to the same permission list« the ones 
available to the UDDZ registry may become out of date. As a result it is 
possible that a user will not be provided with details of service to which 
he has access or he may be provided with details of a service to which he 
does not have access. 

Figure 6 is a flow diagram of the main method steps followed by a 
UDDI registry and access manager according to the preferred embodiment of 
the present invention. At step 601 a request is received from a user to 
access a business entity definition. The type of access specified by the 
request could be to update, delete or read the business entity definition. 
At st^ 602 the business entity definition for which access was requested 
is located and at step 603 an identifier of the user is obtained from 
infozmation sent, at step 601, with the request. The identifier could be 
for a particular user or a group of users, and this along with details of 
the one or more business entity definitions and the type of access sought, 
are then provided to the Access Manager. At step 604 the access manager 
locates permission details associated with the business entity definition, 
for exaiqple by locating them in a virtual file system known to the access 
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manager* and Chen* at seep 605 checks to see i£ the identifiea user bas« 
according to the pezmlssion details « the required permission to access the 
business entity definition or one or loore information elements contained 
within it . Zf the user does not have the required permission the user 
r^tuest is rejected and an error returned at step 606. However If the user 
does have the required permission the request is permitted access the 
business entity definition at step 607. It is also possible that the user 
has limited access to the business entity definition and, if so, step 607 
only permits access to the subset of the business entity definition to 
which. the user has access. 

Note the flow diagram of Fig. 6 is sinplified and the steps do not* 
necessarily have to be carried out in the order specified. For example* 
given a business entity definition which has a plurality of associated 
permission details, each for a different information element in the 
business entity definition, st^>s 604 and 605 could be carried out in- a 
loop such that permission details are obtained and then checked for each 
information element in turn. Further if the request is a read request it 
may specify a search criteria for which the ODDI registry locates one or 
more business entity definitions which satisfy the criteria. In this case 
the steps 604, 605, 606 and 607 may be in a loop which check each of the 
one or more business entity definitions in turn. 

Note that a skilled person in the art would realise that the method 
described with reference to figure 6 could be implenented in a variety of 
programming languages* for example, Java™, C* and C** <Java is a 
registered trademark of Sun Microsystems, Inc. in the united States, other 
countries, or both.). Further a skilled person would realise that once 
ijsplemented che methods can be stored in a computer program product 
comprising or more programs « in source or executable form, on a media, 
such as floppy disk, CD, and DVD, suitable for loading onto a data 
processing host and causing the data processing host to carry out the 
methods. 

Further note that whilst the invention has been described in terms 
of a UDDZ registry a skilled person would realise that a registry could be 
implMented, which is not a UDDI registry, but provides a similar function 
to a UDDI registry. 

Thus* according to the present invention a registry* suCh as a ODDI 
registry, restricts access to business entity definitions contained in the 
registry according to permission details associated with the business 
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service definition. A business entity definition may coooprise a plurality 
of infomation elements. Pemii salon details, which define tisers or groups 
of users with permission to access the information element, are then 
associated with one or more of these infomation elements. When a user 
request is received to access a business entity definition access is 
restricted to only those inforxaation eleBsents for which the user has the 
required permission. 
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1. K method for a registry of business entity definitions to handle user 
requests to access business entity definitions, the method comprising 
stc^s of: 

receiving a reauest from a user to access a business entity 
definition; 

•obtaining, from data associated with the request « the identity of 
the user; 

determining, from permission det^alls associated with the business 
entity definition and the identity of the user, whether the user has 
permission to access infoziaatlon in the business entity definition; and 

denying the user access to information in the business entity 
definition if it Is determined that the user does not have permission. 

2. The method of claim 1 wherein the request specifies a search criteria, 
and. method con^rlses the further st^ of: 

using the search criteria to locate the business entity definition 
and to determine what information in the business entity definition the 
user wishes to access. 

3. The method of claim 1 or claim 2 wherein: the information in the 
business entity definition comprises a plurality of information elements 
each having permission details associated therewith; the step of 
determining determines from permission details associated with each 
information element whether the user has permission to access that 
information element; and the step of denying denies the user access to 
those information elements for which it is determined that the user does 
not have permission. 

4. The method of claim 3 wherein the determining step further determines 
whether a user has permission to access an information ele me nt from an 
access policy and permission details associated with a different' 
information element. 

5. The method of claim 4 wherein the information elements are in a 
hierarchy and the determining step determines that a user does not have 



WO200SA003937 



PCT/GB2003yOOS438 



IS 



pexmiasion to access a firsc inforznation element it pezrtiission details 
associated with one or more second information elements directly beneath 
the first information element in the hierarchy indicate that user does not 
have access to one or more of the' second information elements. 

5 

6. The method of any one of claims 3, 4 and 5 comprising the further st^ 
of: 

locating the permission details in a file system in which the 
10 permission details are in a location in the file system which is defined 

according to the information elenent with which they are associated. 

7. The method of any preceding claim wherein the registry is a UDDl 
registry and the infomation in the business entity definition is a 

15 business mtity information element, the business entity information 

element containing one or more business iservice entity information 
elements, each business service entity containing one or more binding 
teoplate Information elements and each binding template containing one or 
more references each referring to a technical model information element. 

20 

8. A registry of business entity definitions for handling requests to 
access business entity definitions, the registry coxnprising: 

means for receiving a request from a user to access a business 
25 entity definition; 

means for obtaining, from data associated with the request, the 
identity of the user; 

30 means for determining, from permission details associated with the 

business entity definition and the identity of the user, whether the user 
has permission to access infomation in the business entity definition; 
and 

means for denying the user access to information in the business 
35 entity definition if it is determined that the user does not have 

permission. 

9. The registry of claim 1 wherein the request specifies a search 
criteria, and the registry furUier comprises: 

40 
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means for using the search criteria to locate the business entity 
definition and to determine %diat infoxnation in the business entity 
definition the user wishes to access. 

10. *he registry of claim e or claim 9 wherein: the information in the 
business entity definition comprises a plurality of information elenents • 
each having permission details associated therewith, each of the plurality 
of information elements; the means for determining determines from 
permission details associated with each information element whether the 
user has permission to access that information element; and the means for 
denying denies the user access to those information elenents for which it 
is determined that the user does not have permission. 

11. The registry of claim 10 wherein the determining means further 
determines whether a user has permission to access an information element 
from an access policy and permission details associated with a different 
information element. 

12. rtie registry of claim 11 wherein the information elements are in a 
hierarchy and the access policy specifies that a user does not have 
permission to access a first information elenent if permission details 
associated with one or more second information elements directly beneath 
the first information el«iient In the hierarchy indicate that user does not 
have access to one or more of the second information elements. 

13. The registry of any one of claims 10, 11 and 12 further cowprisingt 

means for locating the permission details in a file system in which 
the permission details are in a location in the file system which is 
defined according to the information element with which they are 
associated. 

14. The registry of any one of claims 8 to 13 wherein the registry is a 
UDDI registry and the information in the business entity definition is a 
business entity information element, the business entity information 
element containing one or more business service entity information 
elements, each business service entity containing one or more binding 
template information elenents and each binding ten^late containing one or 
more references each referring to a technical model information element. 

15. A registry service for handling user requests to access business 
entity definitions, providing the service comprising the steps of: 
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receiving a request from a user to access a business entity 
definition; 

obtaining, from data associated with the request, the identity of 
the user; 

detezinining, from permission details associated with the business 
entity definition and the identity of the user, whether the user has 
permission to access information in the business entity definition; and 

denying the user access to information in the business entity 
definition if it is determined that the user does not have permission. 

16, A cojnputer program product comprising instructions which, when run on 
a data processing host« cause said data processing host to carry out a 
method according to any one of claims 1 to 7. 
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